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What Is Claimed Is; 

1 . A method for facilitating access to a plurality of applications that 
require passwords, comprising: 

3 receiving a request for a password from an application running on a 

4 remote computer system, the request being received at a local computer system; 

5 authenticating the request as o/iginating from a trusted source; 

6 using an identifier for the application to look up the password for the 

7 application in a password store containing a plurality of passwords associated with 

8 the plurality of applications; and 

9 if the password exists in thi password store, sending the password or a 
function of the password to the application on the remote computer system. 



1 2. The method of c/aim 1 , wherein the request for the password 

2 includes computer code that wften run on the local computer system requests the 

3 password on behalf of the application on the remote computer system. 

1 3 . The method of" claim 2, wherein the computer code is in the form 

2 of a JAVA applet that runs dn a JAVA virtual machine on the local computer 

3 system. 



1 4. The method of claim 3, wherein sending the password or the 

2 function of the password jfo the application to the remote computer system 

3 involves: 

4 communicating tile password to the JAVA applet; and 
allowing the JAVA applet to forward the password to the application on 



6 the remote computer system. 
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1 5 The method of claim 3, wheijbin the JAVA applet is a signed 

2 JAVA applet, and wherein authenticating the request includes authenticating the 

3 JAVA applet's certificate chain. / 

1 6. The method of claim 1 , wherein authenticating the request involves 

2 authenticating a creator of the request. / 

1 7. The method of claim/ 1 , wherein authenticating the request involves 

2 authenticating the remote computet system that sent the request. 

1 8 . The method of claim 1 , further comprising, if the password store is 

2 being accessed for the first tinfe, 

3 prompting a user fori single sign on password for the password store; and 

4 using the single sW on password to open the password store. 

1 9. The methfod of claim 8, wherein if a time out period for the 

2 password store expires^ 

3 prompting th«S user again for the single sign on password for the password 

4 store; and / 

5 using the sftngle sign on password to open the password store. 

1 10. ffhe method of claim 1 , wherein if the password store is being 

2 accessed for tMe first time, the method further comprises authenticating the user 

3 through an authentication mechanism, wherein the authentication mechanism can 

4 include: / 

5 a smart card; 

L 15 
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2 



a biometric authentication mechanism; and 
a public key infrastructure. 



1 1 1 . The method of claim t wherein if the password does not exist in 

2 the password store, the method furthfe r comprises : 

3 adding the password to the password store; and 

4 sending the password to the/application on the remote computer system. 

1 1 2. The method of cla^n 1 1 , wherein adding the password to the 

2 password store further comprises/automatically generating the password. 

1 1 3 • 1116 method of clfaim 1 1 , wherein adding the password to the 

2 password store further comprises asking a user to provide the password. 

1 1 4. The method of/claim 1 , further comprising decrypting data in the 

2 password store prior to lookirjg up the password in the password store. 

1 1 5. The method of" claim 1 , wherein the password store is located on a 

2 second remote computer system. 



1 
2 
3 
4 
5 



one of: 



16. The method j>f claim 1 , wherein the password store is located 

a local smart card; 
a floppy disk; and 
a memory button. 



on 



1 7. The methcjd of claim 1 , further comprising: 
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receiving a request to change the passed from the application on the 
remote computer system; 

automatically generating a replacement password; 

storing the replacement password/in the password store; and 

forwarding the replacement password or the password function to the 
application on the remote computer system. 



1 
2 
3 
4 
5 
6 
7 
8 
9 
10 
11 
12 



18. A computer-readable storage medium storing instructions that 
when executed by a computer clause the computer to perform a method for 
facilitating access to a plurality of applications that require passwords, the method 
comprising: 

receiving a requesf for a password from an application running on a 
remote computer systen/, the request being received at a local computer system; 

authenticating flie request as originating from a trusted source; 

using an iden/ifier for the application to look up the password for the 
application in a password store containing a plurality of passwords associated with 
the plurality of applications; and 

if the password exists in the password store, sending the password or a 
function of the password to the application on the remote computer system. 



1 

2 
3 
4 



1 9. / The computer-readable storage medium of claim 1 8, wherein the 
request for the password includes computer code that when run on the local 
computer /ystem requests the password on behalf of the application on the remote 
computer system. 
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1 20. The computer-readable storage medium of claim 1 9, wherein the 

2 computer code is in the form of a JAVA applet that runs on a JAVA virtual 

3 machine on the local computer sjptem. 



1 

2 
3 
4 
5 
6 



2 1 . The computer-reliable storage medium of claim 20, wherein 
sending the password or the function of the password to the application to the 
remote computer system involves: 

communicating the pass/word to the JAVA applet; and 
allowing the JAVA applet to forward the password to the application on 
the remote computer system. 



1 

2 
3 



22. The computer-readable storage medium of claim 20, wherein the 
JAVA applet is a signed JAVA applet, and wherein authenticating the request 
includes authenticating the JAVA applet's certificate chain. 



1 23 . The computerj-readable storage medium of claim 1 8, wherein 

2 authenticating the request involves authenticating a creator of the request. 



1 
2 
3 

1 

2 
3 
4. 
5 



24. The compute; 
authenticating the request ir^volves 
that sent the request. 



readable storage medium of claim 18, wherein 
authenticating the remote computer system 



time, 



25. The computer-readable storage medium of claim 1 8, wherein the 
method further comprises, if the password store is being accessed for the first 



prompting a user fcr a single sign on password for the password store; and 
using the single sign on password to open the password store. 



\ 
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1 26. The computer-readable storage medium of claim 25, wherein if a 

2 time out period for the password store expires, the method further comprises: 

3 prompting the user again for ther single sign on password for the password 

4 store; and / 

5 using the single sign on password to open the password store. 

1 27. The computer-readable storage medium of claim 18, wherein if the 

2 password store is being accesse<4 for the first time, the method further comprises 

3 authenticating the user througM an authentication mechanism, wherein the 

4 authentication mechanism can include: 

5 a smart card; / 

6 a biometric authentication mechanism; and 

7 a public key infrastructure. 

1 28. The computer-readable storage medium of claim 1 8, wherein if the 

2 password does not exist in the password store, the method further comprises: 

3 adding the mssword to the password store; and 

4 sending the password to the application on the remote computer system. 

1 29. The computer-readable storage medium of claim 28, wherein 

2 adding the password to the password store further comprises automatically 

3 generating the password. 

1 30./ The computer-readable storage medium of claim 28, wherein 

2 adding the password to the password store further comprises asking a user to 

3 provide the password. 
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1 31. The computer-readable stof age medium of claim 1 8 5 wherein the 

2 method further comprises decrypting datji in the password store prior to looking 

3 up the password in the password store. 

1 32. The computer-readable/storage medium of claim 1 8, wherein the 

2 password store is located on a second/remote computer system. 



1 

2 
3 
4 
5 



one of: 



33. The method of dairy! 18, wherein the password store is located on 

a local smart card; 
a floppy disk; and 
a memory button. 



1 34. The computer-readable storage medium of claim 1 8, wherein the 

2 method further comprises : 

3 receiving a request to/change the password from the application on the 

4 remote computer system; 

5 automatically generating a replacement password; 

6 storing the replacement password in the password store; and 

7 forwarding the replacement password or the password function to the 

8 application on the remote/computer system. 



1 3 5 . An apparatus that facilitates accessing a plurality of applications 

2 that require passwords, comprising: 
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3 a receiving mechanism that receives a request for a password from an 

4 application running on a remote computer system, the request being received at a 

5 local computer system; / 

6 an authentication mechanism mat authenticates the request as originating 

7 from a trusted source; / 

8 a lookup mechanism that use* an identifier for the application to look up 

9 the password for the application in a password store containing a plurality of 

1 0 passwords associated with the plurality of applications; and 

1 1 a forwarding mechanism that sends the password to the application on the 

12 remote computer system if the password exists in the password store. 

1 36. The apparatus oi claim 35, wherein the request for the password 

2 includes computer code that when run on the local computer system requests the 

3 password on behalf of the application on the remote computer system. 

1 37. The apparatus of claim 36, wherein the computer code is in the 

2 form of a JAVA applet that jbns on a JAVA virtual machine on the local 

3 computer system. / 

1 38. The apparatus of claim 37, wherein the forwarding mechanism is 

2 configured to send the password to the application on the remote computer system 

3 by: / 

4 communicating fthe password to the JAVA applet; and 

5 allowing the JAVA applet to forward the password to the application on 

6 the remote computer system. 
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/ 

1 39. The apparatus of claim 37, wherein the JAVA applet is a signed 

2 JAVA applet, and wherein the authentication mechanism is configured to 

3 authenticate a certificate chain. I 

1 40. The apparatus of clafm 35, wherein the authentication mechanism 

2 is configured to authenticate a creaftor of the request. 

1 41. The apparatus of claim 35, wherein the authentication mechanism 

2 is configured to authenticate the femote computer system that sent the request. 

1 42. The apparatus of claim 35, wherein if the password store is being 

2 accessed for the first time, the lookup mechanism is configured to: 

3 prompt a user for a single sign on password for the password store; and to 

4 use the single sign on password to open the password store. 

1 43 . The apparatus of claim 42, wherein if a time out period for the 

2 password store expires, the lookup mechanism is configured to: 

3 prompt the user again for the single sign on password for the password 

4 store; and to I 

5 use the single sign on/password to open the password store. 

1 44. The apparatus of claim 35, wherein if the password store is being 

2 accessed for the first time, ttte lookup mechanism is configured to authenticate the 

3 user through an authentication mechanism, wherein the authentication mechanism 

4 can include: / 

5 a smart card; / 

6 a biometric authentication mechanism; and 
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1 a public key infrastmctlre. 

1 45 . The apparatus pf claim 3 5 , further comprising an insertion 

2 mechanism, wherein if the password does not exist in the password store the 

3 insertion mechanism is configured to: 

4 add the password rathe password store; and to 

5 send the password to the application on the remote computer system. 

1 46. The apparatus of claim 45, wherein the insertion mechanism is 

2 additionally configured to automatically generate the password. 

1 47. The apparatus of claim 45, wherein the insertion mechanism is 

2 additionally configured io ask a user to provide the password. 

1 48. The apparatus of claim 35, further comprising a decryption 

2 mechanism that is configured to decrypt data in the password store. 

1 49. The apparatus of claim 35, wherein the password store is located 

2 on a second remote computer system. 

1 50. The method of claim 35, wherein the password store is located on 

2 one of: / 

3 a local smart card; 

4 a floppy disk; and 

5 a memory jDutton. 
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1 51. The apparatus of clafm 35, further comprising a password changing 

2 mechanism that is configured to/ 

3 receive a request to ctfange the password from the application on the 

4 remote computer system^ 

5 automatically/generate a replacement password; 

6 store the replacement password in the password store; and to 

7 fonvard4he replacement password to the application on the remote 

8 computer system. 
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